Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.mft
File: LKN9qXDEZkV1g7vgKyoOcvvcYyg.mft (raw, json)
Hash identifier: eLS8pn0fSVYatnl3Bpk2OhRs0KOBABvvcK4hS3ZIyXw=
Subject key identifier: 3F:D1:0F:8F:00:82:ED:A0:52:47:8F:11:BC:B9:8F:FD:B4:FA:7A:4F
Authority key identifier: 2C:A3:7D:A9:70:C4:66:45:75:83:BB:E0:2B:2A:0E:72:FB:DC:63:28
Certificate issuer: /CN=2ca37da970c466457583bbe02b2a0e72fbdc6328
Certificate serial: 01973D9AA8020417DCC545A21AB7F7FF1358
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKN9qXDEZkV1g7vgKyoOcvvcYyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.mft
Manifest number: 6F
Signing time: Thu 05 Jun 2025 01:00:35 +0000
Manifest this update: Thu 05 Jun 2025 01:00:35 +0000
Manifest next update: Fri 06 Jun 2025 01:00:35 +0000
Files and hashes: 1: 65LOTWbYKO8WgYG9BzJDe2-WQYw.roa (hash: r/wzovoY8RroYrCDVvJnayhwU+roMgwKwl/4ua4F6NI=)
2: BNA4ARff29zCBfR6242MtTb6TGg.roa (hash: tJrTcm7xH3ApI498oc2nbD1Dbkv2EhPah1ZZUS9A5bs=)
3: HLToq3nf5OApFMJ_DLN91h1Fnjo.roa (hash: 1jDZSo5xWA1TudXcCIeUFspwv8s1DeU3J7ObH+JPAu8=)
4: LKN9qXDEZkV1g7vgKyoOcvvcYyg.crl (hash: LKH7UaPbWakSocpbT76y8cB++d8sq+GHDmXbOBEuz98=)
5: m150QYtpxXBTiSlnK92QRVRD5zo.roa (hash: ebTEJw9nejGCIduesrnIYj5ZZrinqeTVbBAfSnKeowc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/LKN9qXDEZkV1g7vgKyoOcvvcYyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 06 Jun 2025 01:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:3d:9a:a8:02:04:17:dc:c5:45:a2:1a:b7:f7:ff:13:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ca37da970c466457583bbe02b2a0e72fbdc6328
Validity
Not Before: Jun 5 01:00:35 2025 GMT
Not After : Jun 6 01:00:35 2025 GMT
Subject: CN=3fd10f8f0082eda052478f11bcb98ffdb4fa7a4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:56:92:8c:bc:35:99:34:fc:31:79:da:00:54:
43:f6:54:4f:ac:33:8f:11:5b:84:1a:72:31:7f:28:
95:d1:03:0a:df:5c:80:5c:a1:5f:c3:d6:79:d8:7f:
be:8f:78:c9:58:d1:06:50:80:29:5a:29:1e:c4:f5:
8e:03:bd:da:bd:fd:4a:3b:09:8a:aa:db:03:17:21:
41:21:72:21:0a:c2:91:91:58:24:cc:ac:5b:ee:5c:
9f:86:eb:90:50:21:15:23:a5:34:11:de:77:c7:e5:
4b:27:3d:c3:02:a4:f8:20:af:d3:ab:18:b8:ed:54:
c0:66:6d:ec:e2:16:81:1e:23:18:4b:de:72:c2:8e:
02:9f:bc:10:f2:91:f7:d6:fd:43:45:3e:9c:1a:ca:
9f:bf:8b:95:9a:e4:65:af:c4:97:ef:c0:29:18:46:
a5:6f:a0:3e:8f:db:7b:75:95:06:ae:3c:22:a7:ab:
83:df:77:8b:8a:09:14:43:d5:f1:95:b9:5e:25:e6:
11:24:4d:6f:7c:97:05:3a:8d:ac:79:5a:eb:42:54:
ae:6f:33:cc:bd:a6:d3:6e:1e:ed:ff:84:9d:9c:8d:
aa:53:5e:80:b2:1e:28:63:09:c6:1c:fe:05:d7:fc:
7c:87:0b:f1:ab:9a:00:67:b0:45:39:2e:fa:5e:8d:
ba:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:D1:0F:8F:00:82:ED:A0:52:47:8F:11:BC:B9:8F:FD:B4:FA:7A:4F
X509v3 Authority Key Identifier:
keyid:2C:A3:7D:A9:70:C4:66:45:75:83:BB:E0:2B:2A:0E:72:FB:DC:63:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKN9qXDEZkV1g7vgKyoOcvvcYyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2492fd-6e37-4582-84e8-8ca25f488ebf/1/LKN9qXDEZkV1g7vgKyoOcvvcYyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:cd:6d:38:88:de:d0:36:32:0f:ef:79:fb:e6:30:da:88:1c:
5f:bb:69:30:d9:84:fd:c2:43:67:f6:8f:cc:21:35:d1:68:f8:
46:5b:a1:45:87:e8:c6:53:9b:6a:48:62:6b:5b:6d:06:db:79:
27:e7:1c:bd:09:d5:eb:61:0e:1c:d3:e0:9e:a4:87:bb:28:c5:
33:ce:94:a3:c9:6c:fb:5b:0b:5c:33:fb:51:cf:6a:e8:4b:59:
75:07:18:b0:33:a9:64:26:ee:77:0b:59:c8:c2:0b:6e:e3:94:
a6:40:bc:7b:7b:56:16:c2:a8:a9:c3:79:c2:de:29:08:35:36:
3e:d1:60:dc:67:fc:4a:c8:a3:d1:ea:8d:c0:fe:dd:fc:c2:22:
e2:7f:69:a0:a9:c1:c0:03:40:78:9f:e4:f3:b6:1e:11:1e:cd:
3b:5c:ce:e2:63:fb:e5:c4:88:87:11:96:74:bb:f0:6c:e7:9f:
f6:ff:16:c0:f3:aa:be:61:ac:31:4c:fe:9b:00:b3:bd:24:e3:
50:b5:e7:ff:3c:43:27:fe:fe:0c:1d:a8:26:d2:67:d9:cb:1d:
d4:53:f4:15:da:e3:fd:7e:91:ae:e7:2e:46:c8:28:23:63:07:
58:87:65:89:2e:0a:1f:8e:54:5d:a8:c0:ce:4a:fd:96:ab:28:
e1:d2:4f:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 5 07:14:41 2025 by rpki-client